Security Alert: Windows Animated Cursor Flaw

This isn't the most timely security alert, but just in case you haven't already heard. Exploits for these vulnerabilities have been observed in the wild.

A flaw was discovered late last year in the way Windows handled animated cursor (.ANI) files. An attacker who successfully exploited the most severe of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

For more information, please see Microsoft Security Bulletin MS07-017: Vulnerabilities in GDI Could Allow Remote Code Execution (925902).

If you have Windows automatic update enabled, then this patch should have already been applied. Otherwise, the patch for Windows XP SP2 is available from:
KB925902 - Updates for Windows XP

Now, chop chop! Go check that you do indeed have the update applied.